forked from Marco-Ammann/join-813
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathprivacy-policy.html
175 lines (166 loc) · 10.4 KB
/
privacy-policy.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Privacy Policy | Join</title>
<link rel="stylesheet" href="./style/fonts.css">
<!-- <link rel="stylesheet" href="./style/privacy-policy.css"> -->
<link rel="stylesheet" href="./assets/header-sidebar/header_sidebar.css">
<script src="./js/login_signup/storage.js"></script>
<script src="./assets/header-sidebar/header_sidebar.js"></script>
<link rel="stylesheet" href="./style/privacy-policy.css">
<!-- SVG -->
<link rel="icon" type="image/svg+xml" href="./assets/favicon/logo-black.svg" media="(prefers-color-scheme: light)">
<link rel="icon" type="image/svg+xml" href="./assets/favicon/logo-white.svg" media="(prefers-color-scheme: dark)">
<!-- 96x96 -->
<link rel="icon" type="image/png" href="./assets/favicon/logo-black-96.png" media="(prefers-color-scheme: light)" sizes="96x96">
<link rel="icon" type="image/png" href="./assets/favicon/logo-white-96.png" media="(prefers-color-scheme: dark)" sizes="96x96">
<!-- 32x32 -->
<link rel="icon" type="image/png" href="./assets/favicon/logo-black-32.png" media="(prefers-color-scheme: light)" sizes="32x32">
<link rel="icon" type="image/png" href="./assets/favicon/logo-white-32.png" media="(prefers-color-scheme: dark)" sizes="32x32">
<!-- 16x16 -->
<link rel="icon" type="image/png" href="./assets/favicon/logo-black-16.png" media="(prefers-color-scheme: light)" sizes="16x16">
<link rel="icon" type="image/png" href="./assets/favicon/logo-white-16.png" media="(prefers-color-scheme: dark)" sizes="16x16">
</head>
<body onload="init()">
<!-- Header template -->
<div w3-include-html="./assets/header-sidebar/header_sidebar.html"></div>
<!-- Content -->
<div class="content" id="content">
<section class="privacy-policy">
<div class="privacy-policy-title">
<h1>Privacy Policy</h1>
<a id="back-button" class="noselect" href="javascript:history.back()"><img
src="./assets/img/Desktop/general_elements/arrow_left/default.svg" alt="Go back"></a>
</div>
<p>
Personal data (usually referred to just as „data“ below) will only be processed by us to the extent
necessary and for the purpose of providing a functional and user-friendly website, including its
contents, and the services offered there.
</p>
<p>
Per Art. 4 No. 1 of Regulation (EU) 2016/679, i.e. the General Data Protection Regulation (hereinafter
referred to as the „GDPR“), „processing“ refers to any operation or set of operations such as
collection, recording, organization, structuring, storage, adaptation, alteration, retrieval,
consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment,
or combination, restriction, erasure, or destruction performed on personal data, whether by automated
means or not.
</p>
<p>
The following privacy policy is intended to inform you in particular about the type, scope, purpose,
duration, and legal basis for the processing of such data either under our own control or in conjunction
with others. We also inform you below about the third-party components we use to optimize our website
and improve the user experience which may result in said third parties also processing data they collect
and control.
</p>
<p>
Our privacy policy is structured as follows:
</p>
<p>
I. Information about us as controllers of your data<br>
II. The rights of users and data subjects<br>
III. Information about the data processing<br>
</p>
<h2>I. Information about us as controllers of your data</h2>
<p>
The party responsible for this website (the „controller“) for purposes of data protection law is:
</p>
<ul>
<li>Sebastian Treittinger</li>
<li>Marco Ammann</li>
<li>Joost Heidrich</li>
<li>Ghulammustafa Kakar</li>
</ul>
<h2>II. The rights of users and data subjects</h2>
<p>
With regard to the data processing to be described in more detail below, users and data subjects have
the
right
</p>
<ul>
<li>to confirmation of whether data concerning them is being processed, information about the data being
processed, further information about the nature of the data processing, and copies of the data (cf.
also Art. 15 GDPR);</li>
<li>to correct or complete incorrect or incomplete data (cf. also Art. 16 GDPR);</li>
<li>to the immediate deletion of data concerning them (cf. also Art. 17 DSGVO), or, alternatively, if
further processing is necessary as stipulated in Art. 17 Para. 3 GDPR, to restrict said processing
per Art. 18 GDPR;</li>
<li>to receive copies of the data concerning them and/or provided by them and to have the same
transmitted to other providers/controllers (cf. also Art. 20 GDPR);</li>
<li>to file complaints with the supervisory authority if they believe that data concerning them is being
processed by the controller in breach of data protection provisions (see also Art. 77 GDPR).</li>
</ul>
<p>
In addition, the controller is obliged to inform all recipients to whom it discloses data of any such
corrections, deletions, or restrictions placed on processing the same per Art. 16, 17 Para. 1, 18 GDPR.
However, this obligation does not apply if such notification is impossible or involves a
disproportionate effort. Nevertheless, users have a right to information about these recipients.
</p>
<p>
<strong>Likewise, under Art. 21 GDPR, users and data subjects have the right to object to the
controller’s future processing of their data pursuant to Art. 6 Para. 1 lit. f) GDPR. In particular,
an objection to data processing for the purpose of direct advertising is permissible.</strong>
</p>
<h2>III. Information about the data processing</h2>
<p>
Your data processed when using our website will be deleted or blocked as soon as the purpose for its
storage ceases to apply, provided the deletion of the same is not in breach of any statutory storage
obligations or unless otherwise stipulated below.
</p>
<h2>Customer account/registration</h2>
<p>
If you create a customer account with us via our website, we will use the data you entered during
registration (e.g. your name, your address, or your email address) exclusively for services leading up
to your potential placement of an order or entering some other contractual relationship with us, to
fulfill such orders or contracts, and to provide customer care (e.g. to provide you with an overview of
your previous orders or to be able to offer you a wishlist function). We also store your IP address and
the date and time of your registration. This data will not be transferred to third parties.
</p>
<p>
During the registration process, your consent will be obtained for this processing of your data, with
reference made to this privacy policy. The data collected by us will be used exclusively to provide your
customer account.
</p>
<p>
If you give your consent to this processing, Art. 6 Para. 1 lit. a) GDPR is the legal basis for this
processing.
</p>
<p>
If the opening of the customer account is also intended to lead to the initiation of a contractual
relationship with us or to fulfill an existing contract with us, the legal basis for this processing is
also Art. 6 Para. 1 lit. b) GDPR.
</p>
<p>
You may revoke your prior consent to the processing of your personal data at any time under Art. 7 Para.
3 GDPR with future effect. All you have to do is inform us that you are revoking your consent.
</p>
<p>
The data previously collected will then be deleted as soon as processing is no longer necessary.
However,
we must observe any retention periods required under tax and commercial law.
</p>
<h2>Server data</h2>
<p>
For technical reasons, the following data sent by your internet browser to us or to our server provider
will be collected, especially to ensure a secure and stable website: These server log files record the
type and version of your browser, operating system, the website from which you came (referrer URL), the
webpages on our site visited, the date and time of your visit, as well as the IP address from which you
visited our site.
</p>
<p>
The data thus collected will be temporarily stored, but not in association with any other of your data.
</p>
<p>
The basis for this storage is Art. 6 Para. 1 lit. f) GDPR. Our legitimate interest lies in the
improvement, stability, functionality, and security of our website.
</p>
<p>
The data will be deleted within no more than seven days, unless continued storage is required for
evidentiary purposes. In which case, all or part of the data will be excluded from deletion until the
investigation of the relevant incident is finally resolved.
</p>
</section>
</div>
</body>
</html>